GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE), fixing nine vulnerabilities, among which two critical severity ruby-saml library authentication bypass flaws.

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could ...

Apache's HTTP Server is a critical component for hosting web applications worldwide. Recently, two significant vulnerabilities CVE-2024-40725 and CVE-2024-40898 have surfaced, raising alarms across ...

Discover how to test for multi-user vulnerabilities. Four real-world examples of tenant isolation, consolidated testing, and ...

Linksys router contains an authentication bypass vulnerability that could give an attacker full administrative privileges on affected devices. The Lynksys E4200 V2 dual band router contains a ...

Two dozen vulnerabilities in a biometric terminal used in critical facilities worldwide could allow hackers to gain unauthorized access, manipulate the device, deploy malware, and steal biometric data ...

SonicWall is warning customers of a severe vulnerability in its SonicOS SSLVPN with high exploitability that remote attackers could use to bypass authentication. The bug is an improper authentication ...

An attacker-modified update to the SolarWinds Orion network management product that compromised thousands of companies and government agencies is likely not the only way Russian attackers infiltrated ...